Hi Martin,
Fetching a CRL inside the tunnel to check the certificate status
for the same tunnel does not work: it is a hen-egg problem. With
a strict CRL policy, you can't establish the tunnel, because you
have no CRL. And you can't fetch a CRL, because you don't have a tunnel yet.
In case
Hi Stanislav,
Is it an undocumented feature or maybe it will be removed after
sometime?
Whack has been removed entirely with strongSwan 5.0.x.
Regards,
Tobias
___
Users mailing list
Users@lists.strongswan.org
Hi,
1)Charon HTTP requests use the protocol and port from /etc/services (e.g.
TCP/80)?
2)Charon supports the rfc3986 - Uniform Resource Identifier (URI): Generic
Syntax?
CRL fetching is delegated to libcurl (http://curl.haxx.se/libcurl/). I
assume it uses /etc/services, but have never
Hi SS team,
I appreciate if any one could explain to me whether IKE_SA connection
instance # is unique within the entire IKE_SA list? I want to know if there
is a possibility to identify each IKE_SA uniquely with the instance number
displayed with ipsec statusall. Currently, my understanding is
Hi,
I read follwoing comment on Google Play:
# FEATURES AND LIMITATIONS #
* Uses the VpnService API featured by Android 4+. Devices by some
manufacturers seem to lack support for this - strongSwan VPN Client won't
work on these devices!
Is there a list of known devices available on which this
Dear Developers/Users,
first of all - thank you for your software - it's awesome and serves quite well
for several hundred customers at our site every day.
We're using Linux strongSwan U4.5.1/K2.6.26-2-686f
At customer site Bintec R3000 version V.7.9 Rev. 5 (Patch 4) IPSec from
2010/12/21
Hi,
Is there a list of known devices available on which this solution does
not work?
Unfortunately, there isn't. But since we released the app we had only
one error report due to this (from a Sony Ericsson Xperia Pro MK16i).
Regards,
Tobias
___